Kitz ADSL Broadband Information
adsl spacer  
Support this site
Home Broadband ISPs Tech Routers Wiki Forum
 
     
   Compare ISP   Rate your ISP
   Glossary   Glossary
 
Please login or register.

Login with username, password and session length
Advanced search  

News:

Pages: 1 2 [3] 4

Author Topic: Ubiquiti Edgerouter X  (Read 10652 times)

chenks

  • Kitizen
  • ****
  • Posts: 1106
Re: Ubiquiti Edgerouter X
« Reply #30 on: May 16, 2018, 03:48:38 PM »

nice once. job done i've amended it to that.
i'll play tonight and get the unifi controller and AP working correctly again, will just reset it required.

then once that's done i can have a think about the vlan for guest wifi.
Logged

chenks

  • Kitizen
  • ****
  • Posts: 1106
Re: Ubiquiti Edgerouter X
« Reply #31 on: May 16, 2018, 05:28:00 PM »

ok after some testing all is still not quite right.
internally i still can't go to http://192.168.1.2:8787 (for example).

i can get ot 192.168.1.2:80 though.
Logged

MrMike

  • Member
  • **
  • Posts: 41
Re: Ubiquiti Edgerouter X
« Reply #32 on: May 16, 2018, 05:56:59 PM »

Strange, as you shouldn't have any problems accessing services on the same LAN with the default setup that you have on the Edgerouter. Have you verified that the service is running OK locally on the device that's listening on IP 192.168.1.2 and the port number that you can't access?

Just to verify, on the Firewall page for WAN_IN and WAN_LOCAL does the interfaces column read "pppoe0/in" and "pppoe0/local" respectively?
Logged

chenks

  • Kitizen
  • ****
  • Posts: 1106
Re: Ubiquiti Edgerouter X
« Reply #33 on: May 16, 2018, 05:59:27 PM »

yes the service is running fine, as it i connect to it from outside my network it loads fine, so that external firewall is allowing the connection thru the open port that has been set. yet if i try to connect internally it fails.

and yes firewall page matches what you say

Logged

chenks

  • Kitizen
  • ****
  • Posts: 1106
Re: Ubiquiti Edgerouter X
« Reply #34 on: May 16, 2018, 07:25:25 PM »

i have moved forward a bit.
local devices are now accessible using their IP address
however i try to connect to my server using the FQDN it fails.

http://192.168.1.2:7878 works
http://blah.com/service doesn't work (i use nginx to reverse proxy it to 192.168.1.2:7878), i get a 404 error when on the LAN.
however http://blah.com/service does work when on WAN.

port 80 is open and points to 192.168.1.2
« Last Edit: May 16, 2018, 10:01:52 PM by chenks »
Logged

MrMike

  • Member
  • **
  • Posts: 41
Re: Ubiquiti Edgerouter X
« Reply #35 on: May 16, 2018, 11:19:29 PM »

I'm afraid I'm not sure with this particular issue. Not that I think anything is incorrectly configured with the routers DNS service, but do check under Services > DNS and ensure it's the "switch0" interface that's on the listening list.
Logged

chenks

  • Kitizen
  • ****
  • Posts: 1106
Re: Ubiquiti Edgerouter X
« Reply #36 on: May 16, 2018, 11:52:17 PM »

Something to look at tomorrow.
What do you know about the blanks for guest WiFi?

At the moment I have 2 WiFi ssids. 1 main and 1 guest.
Both give out the same IP range from DHCP.
I want the guest to be totally isolated, and for the guest to be in its own ip range via a vlan from the edgerouter, and for each device to not see any other device on the network (including the router).

Can that be done without having to set a specific physical port on the router for that vlan?
Logged

MrMike

  • Member
  • **
  • Posts: 41
Re: Ubiquiti Edgerouter X
« Reply #37 on: May 17, 2018, 01:41:02 AM »

Can that be done without having to set a specific physical port on the router for that vlan?
The Edgerouter also has a built in switch, so VLAN's can be sent down multiple ports.

A quick messy guide to creating VLAN's on the Edgerouter and assigning them to the AP-Lite.

I have set up 2 VLAN's. One for my main home network (vlan id 99, IP range 192.168.99.1/24) and for my guest Wi-Fi (vlan id 10, IP range 192.168.10.1/24).

From the main Dashboard click Add Interface > VLAN. Here's my example - https://i.imgur.com/oY6dueq.png

Once you've created your vlan's, then locate the switch0 interface click Actions > Config. Click the VLAN tab and enable VLAN Aware. See my example - https://i.imgur.com/5qL5KKM.png   Disable VLAN on eth0 which is what your modem is connected to. My AP-Lite is connected to eth2. "pvid" traffic is untagged vlan traffic, "vid" is tagged vlan traffic. This is important for the setup in the in the Unifi controller later.

You'll need to add new entries in the DHCP server and DNS tabs. See my examples - https://i.imgur.com/S2UXYTc.png  https://i.imgur.com/xg7PR4a.png

As posted previously, this guide takes you through creating the firewall rules to block users on the guest Wi-Fi (in my case VLAN ID 10), from accessing other VLAN's - https://help.ubnt.com/hc/en-us/articles/115012700967-EdgeRouter-VLAN-Aware-Switch0-with-Inter-VLAN-Firewall-Limiting

My main firewall rules page once done - https://i.imgur.com/r1500I6.png

Now in the Unifi controller go to Settings > Wireless Networks and edit the SSID that you wish to use for guest Wi-Fi. Expand Advanced Options, check "Use VLAN" and enter the VLAN ID for your guest Wi-Fi network, in my case 10.
Logged

chenks

  • Kitizen
  • ****
  • Posts: 1106
Re: Ubiquiti Edgerouter X
« Reply #38 on: May 17, 2018, 09:11:50 AM »

ok, so it's currently set up like this

192.168.1.x - main network

192.168.1.1 - edgerouter
main network on 192.168.1.x (dhcp lease from 100-253)
192.1658.1.2 - Windows server
192.168.1.10 - Unifi AP on eth4
modem connected to eth0 for DSL

guest IP range will be 192.168.2.x

so do i need to create a VLAN for 192.168.1.x too? or does that already exist as it stands?
Logged

MrMike

  • Member
  • **
  • Posts: 41
Re: Ubiquiti Edgerouter X
« Reply #39 on: May 17, 2018, 04:22:22 PM »

so do i need to create a VLAN for 192.168.1.x too? or does that already exist as it stands?
As it stands you do not have any VLAN's created. I feel that with the desired setup that you described, you should only need to create 1 VLAN for your guest network for the 192.168.2.x range. In my setup that I described, it's a little more complex as I'm planning to add a VLAN aware switch into the mix for additional ports around the home.

Go ahead and create 1 VLAN for the 192.168.2.x range. Then in the Actions > Config menu for "switch0" check the VLAN Aware option and only check the box for eth4 leaving the other ports un-checked. Then in "vid" enter the VLAN ID number that you used for the 192.168.2.x VLAN. Leave "pvid" blank. This will send the tagged VLAN traffic to the AP-Lite whilst hopefully still send your 192.168.1.x traffic to the AP-Lite for your non-guest Wi-Fi network.

If this doesn't work how I feel it will in my head, then the 2 VLAN setup might be required. But that will get a little tricky as you can't create a VLAN for the 192.168.1.x range as it's already assigned to the switch0 interface. You'll first have to change the IP range for switch0 to a temporary range e.g. 192.168.3.x, then create a VLAN for 192.168.1.x range.
Logged

chenks

  • Kitizen
  • ****
  • Posts: 1106
Re: Ubiquiti Edgerouter X
« Reply #40 on: May 17, 2018, 04:26:39 PM »

while i remember.
i remember you saying the edgerouter could be powered by the POE injector supplied with the UAP.

so to confirm i have this right.

modem PPPoE ethernet to POE injector and then POE injector to eth0?
then eth4 with POE passthru enabled and UAP connected to eth4?
then end result being the edgerouter is powered from eth0 and the UAP is powered from eth4?

currently i have the edgerouter powered by a PSU and the UAP powered by the POE injector.
Logged

MrMike

  • Member
  • **
  • Posts: 41
Re: Ubiquiti Edgerouter X
« Reply #41 on: May 17, 2018, 04:36:30 PM »

modem PPPoE ethernet to POE injector and then POE injector to eth0?
then eth4 with POE passthru enabled and UAP connected to eth4?
then end result being the edgerouter is powered from eth0 and the UAP is powered from eth4?

Yes, that is correct. Works great for me right now.
Logged

chenks

  • Kitizen
  • ****
  • Posts: 1106
Re: Ubiquiti Edgerouter X
« Reply #42 on: May 17, 2018, 07:26:05 PM »

As for modem stats, I used the following guide under heading 5 on this page. My router is on 192.168.99.1 and modem is listening on 192.168.99.2 which is the IP that dslstats connects to. I use the 2 ethernet cable setup described in the following guide. Lan 1 from the Zyxel modem goes in to eth0 of the Edgerouter which is the PPPoE. Lan 2 from the Zyxel goes in to Eth1 on the Edgerouter for modem stats. The PPPoE connection on the Edgerouter has an MTU of 1492 due to the Zyxel not supporting baby jumbo frames (long thread on this forum discussing this).

https://kitz.co.uk/routers/zyxel_VMG8324-B10A_bridge.htm

i've tried to follow that guide but came stuck at the "Configure VMG8324 access from the LAN to get line stats" bit.
Mines actually a Zyxel VMG1312-B10A, and the options i have are differnet to those on the guide.

there is no menu structure of
Network Settings > Interface Group
Broadband > WAN Interface :

and i don't have PTM type > VDSL/ppp1.1 as an option in the closest option of Network settings > Interface group


Logged

MrMike

  • Member
  • **
  • Posts: 41
Re: Ubiquiti Edgerouter X
« Reply #43 on: May 17, 2018, 10:31:48 PM »

In the menu on your 2nd screenshot select the PTM type "VDSL/ptm0.1". Here's my settings page for reference - https://i.imgur.com/lYj9Mps.png
Logged

chenks

  • Kitizen
  • ****
  • Posts: 1106
Re: Ubiquiti Edgerouter X
« Reply #44 on: May 18, 2018, 07:08:17 PM »

got that working now.
will play with the VLAN stuff over the weekend.

here's what i have

« Last Edit: May 20, 2018, 02:09:40 PM by chenks »
Logged
Pages: 1 2 [3] 4
 

anything